Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MCP: Ensure CloudFront distributions have WAF enabled #887

Open
1 task
Tracked by #871
, #899
...
bwbaker1 opened this issue Aug 13, 2024 · 0 comments
Open
1 task
Tracked by #871
, #899
...

MCP: Ensure CloudFront distributions have WAF enabled #887

bwbaker1 opened this issue Aug 13, 2024 · 0 comments

Comments

@bwbaker1
Copy link
Collaborator

Description

AWS WAF is a web application firewall that helps protect web applications and APIs from attacks. It allows you to configure a set of rules, called a web access control list (web ACL), that allow, block, or count web requests based on customizable web security rules and conditions that you define. Ensure your CloudFront distribution is associated with an AWS WAF web ACL to help protect it from malicious attacks.

Non-compliant resources:
arn:aws:cloudfront::237694371684:distribution/E2HG14BAFN6FZ5
arn:aws:cloudfront::237694371684:distribution/E1COX9APJFTK2X
arn:aws:cloudfront::237694371684:distribution/E26TIGKCB37R81

Remediation steps: https://docs.aws.amazon.com/securityhub/latest/userguide/cloudfront-controls.html#cloudfront-6

Acceptance Criteria

  • CloudFront distribution is associated with an AWS WAF web ACL
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bwbaker1